3 ### needed for initial content load ###
6 ### Multimaster-ServerIDs and URLs ###
8 ${MMR_SERVERIDS_CONFIG}
11 include ${LDAPDIR}/backend-schema.schema
13 pidfile ${LDAPDIR}/slapd.pid
14 argsfile ${LDAPDIR}/slapd.args
15 sasl-realm ${DNSDOMAIN}
18 # uid=([^,]*),cn=${DNSDOMAIN},cn=digest-md5,cn=auth
19 # ldap:///${DOMAINDN}??sub?(samAccountName=\$1)
22 # uid=([^,]*),cn=([^,]*),cn=digest-md5,cn=auth
23 # ldap:///${DOMAINDN}??sub?(samAccountName=\$1)
26 uid=([^,]*),cn=([^,]*),cn=digest-md5,cn=auth
27 ldap:///cn=samba??one?(cn=\$1)
30 uid=([^,]*),cn=([^,]*),cn=ntlm,cn=auth
31 ldap:///cn=samba??one?(cn=\$1)
34 by dn=cn=samba-admin,cn=samba manage
38 access to dn.subtree="cn=samba"
41 access to dn.subtree="${DOMAINDN}"
42 by dn=cn=samba-admin,cn=samba manage${REPLICATOR_ACL}
43 by dn=cn=manager manage
46 password-hash {CLEARTEXT}
48 include ${LDAPDIR}/modules.conf
50 defaultsearchbase ${DOMAINDN}
62 directory ${LDAPDIR}/db/samba
63 rootdn cn=Manager,cn=Samba
65 ########################################
69 rootdn cn=Manager,${SCHEMADN}
70 directory ${LDAPDIR}/db/schema
72 index samAccountName eq
74 index objectCategory eq
75 index lDAPDisplayName eq
78 index entryUUID,entryCSN eq
80 #syncprov is stable in OpenLDAP 2.3, and available in 2.2.
81 #We only need this for the contextCSN attribute anyway....
83 syncprov-sessionlog 100
84 # syncprov-checkpoint 100 10
87 ### Multimaster-Replication of cn=schema Subcontext ###
88 ${MMR_SYNCREPL_SCHEMA_CONFIG}
91 #########################################
95 rootdn cn=Manager,${CONFIGDN}
96 directory ${LDAPDIR}/db/config
98 index samAccountName eq
101 index objectCategory eq
107 index entryUUID,entryCSN eq
109 #syncprov is stable in OpenLDAP 2.3, and available in 2.2.
110 #We only need this for the contextCSN attribute anyway....
112 syncprov-sessionlog 100
113 # syncprov-checkpoint 100 10
115 ### Multimaster-Replication of cn=config Subcontext ###
116 ${MMR_SYNCREPL_CONFIG_CONFIG}
119 ########################################
120 ### cn=users /base-dn ###
123 rootdn cn=Manager,${DOMAINDN}
124 directory ${LDAPDIR}/db/user
126 index samAccountName eq
129 index objectCategory eq
134 index lDAPDisplayName eq
139 index entryUUID,entryCSN eq
141 #syncprov is stable in OpenLDAP 2.3, and available in 2.2.
142 #We only need this for the contextCSN attribute anyway....
144 syncprov-sessionlog 100
145 # syncprov-checkpoint 100 10
147 ### Multimaster-Replication of cn=user/base-dn context ###
148 ${MMR_SYNCREPL_USER_CONFIG}